[Scspamcop] Re: late delivery
Mike Easter
MikeE at ster.invalid
Sat Jul 12 18:57:28 EDT 2008
bar0 wrote:
> well, it might be coincidental , or not, but I've seen a lot of EL
> sourced spam recently, much more than normal. Normal being; pretty rare
> from EL.
Do you mean sourced from an EL userIP direct2MX or do you mean output
thru' an EL smtpauth server or do you mean sourced from an EL webmail
server?
EL does not port 25 block to prevent direct2MX. Re server output; EL's
smtpauth servers and webmail servers can be accessed by any IP with a
cracked EL user/pass.
The other variety of EL abuse you can see is from an EL output server
which is producing misdirected C/R challenges to bogus From. The reason
it isn't any bigger problem than it would otherwise be is because -1- C/R
is not the default configuration -2- the C/R is ameliorated or mitigated
by the fact that known spam is removed before the CR goes into operation
and -3- even an EL client who configures for the spamsetting which would
otherwise challenge by (secondary) default, can turn the challenges off
and handle the suspect folder some other way.
--
Mike Easter
kibitzer, not SC admin
More information about the SCspamcop
mailing list